1 Reply Latest reply on Sep 12, 2017 12:51 AM by jaikiran pai

    Missing Secure Attribute in Encrypted Session (SSL) Cookie - Wildfly10

    D P Apprentice

      How to apply AppScan security fix Missing Secure Attribute in Encrypted Session (SSL) Cookie for Wildfly 10.

       

      I tried to Add the 'Secure' attribute to all sensitive cookies and for that I have added <session-cookie http-only="true" secure="true"/> under <servlet-container name="default"> in standalone.xml

      After restarting Wildfly I am getting below pop up (Session Error message) while accessing application,

       

       

      Thanks,